20 Mar 2024

Security – Processes built around solutions and products – part 1

Every time  I meet a client to discuss Cyber Security and its importance the replies are mostly like ” I have the best firewall etc. so I am secured. So why do I need to worry about security as my firewall /IDS etc. will take care.” Yes one may have the best Perimeter Security devices but then I give them some How much of security testing should I do? .?I end up describing the basic security they have to explain where perimeter security ends and Unknown vulnerability takes over. Perimeter security is like the Physical security- the security at your office entrance gates. These security people have been given directions like what to check, what to allow inside etc. for example not to allow a person entry without being escorted etc.. This is what the perimeter security device does only follows what it is asked to do, like monitor any activity which any device/ application is doing which it is not supposed to do. But can it detect something truly unknown or a zero day vulnerability?
I do agree that you need these devices to secure your networks from known vulnerabilities but the main big question ” How do we protect from the ZERO DAY Vulnerability”

Text to Speech in Multiple Languages

Every time I meet a client to discuss Cyber Security and its importance the replies are mostly like ” I have the best firewall etc. so I am secured. So why do I need to worry about security as my firewall /IDS etc. will take care.” Yes one may have the best Perimeter Security devices but then I give them some How much of security testing should I do? .?I end up describing the basic security they have to explain where perimeter security ends and Unknown vulnerability takes over. Perimeter security is like the Physical security- the security at your office entrance gates. These security people have been given directions like what to check, what to allow inside etc. for example not to allow a person entry without being escorted etc.. This is what the perimeter security device does only follows what it is asked to do, like monitor any activity which any device/ application is doing which it is not supposed to do. But can it detect something truly unknown or a zero day vulnerability?
I do agree that you need these devices to secure your networks from known vulnerabilities but the main big question ” How do we protect from the ZERO DAY Vulnerability”